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(54) Encryption & decryption apparatus 

(57) In an encryption apparatus comprising; (a) a 
transmission-data-format-transformer which transforms 
transmission data into synchronous transmission data 
having a data format of a transmitting line, (b) an 
encrypting device which produces an encrypted syn- 
chronous transmission data by encrypting the synchro- 
nous transmission data with a transmission key for 
transmitting, (c) a transmission command processor 
which processes a transmission control signal, (d) a 
transmission admission device which outputs control 
information received from the transmission admission 
device as asynchronous data, and also admits the data 
to be transmitted, (e) a multiplexing device which multi- 
plexes the encrypted synchronous data as well as asyn- 
chronous transmission data to output, a data encryption 
device for encrypting transmission data is provided by 
using a transmission key for data in order that the trans- 
mission admission device produces a transmission key 
for data responsive to the data content to be encrypted 
by the data encryption device. A decryption apparatus 
for decrypting the encrypted signal, and an encryption & 
decryption apparatus which combines the above 
encryption apparatus and the decryption apparatus are 
also available. Independent of encrypting a transmitting 
line, various depths of an encryption strength can be 
applied to data responsive to a data content arbitrary. 
As a result, a depth of encryption strength can be 
changeable according to a type and a content of trans- 
mission/reception data, and thus, an encryption method 
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can be flexibly changeable depending on a type of 
video, or a compression method of video data. 
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Descripti n 

Held of the Invention 

The present invention relates to a network-inter- 
face-apparatus which transmits audio data and video 
data via network to/from video devices as well as audio 
devices linked with a network Specifically, the invention 
relates not only to an encryption with a transmission key 
for transmitting line but also an encryption apparatus 
which transforms audio data and video data to be trans- 
mitted onto the network into codes, as well as a decryp- 
tion apparatus which transforms the data received from 
the network into audio data and video data. 

Background of the Invention 

A business of distributing video data and audio data 
by using a CATV (cable television) or a communication 
satellite has been widely accepted. A set-top-box for 
receiving this service is one of a hot item in the market, 
and some AV (audio & video) devices with a network 
interface, such as home-use digital video camera, draw 
market's attention. When coupling these devices with a 
network, an encryption & decryption apparatus for video 
data and audio data is requested because a copyright 
should be protected and a charge should be properly 
dealt with. 

Japanese Patent Unexamined Publication No. H06- 
125554 discloses some prior arts relating to an encryp- 
tion & decryption apparatus 

The following description explains one of the prior 
art concerning the encryption & decryption apparatus 
by referring to Fig. 8. 

When transmitting data onto a network, a transmis- 
sion command processing means 1 receives a com- 
mand input comprising a name of receiver, a control 
command for devices, etc. and then transforms the 
command input into control information so that the 
receiver can understand the command input, at the 
same time, the transmission command processing 
means 1 requests a transmission admission means 2 to 
admit data to be transmitted as well as a transmitting 
line to be used. The transmission admission means 2, 
for example, outputs a public key stored in this encryp- 
tion & decryption apparatus to a transmitting line 
encryption means 5 as a transmission key for transmit- 
ting, and also transforms the control information into an 
asynchronous transmission data to output the asyn- 
chronous transmission data to a data multiplexing 
means 6. 

Transmission data comprising video data and audio 
data, etc. on the other hand, is transformed into syn- 
chronous transmission data written in a data format of 
the transmitting line by a transmission-data-format- 
transforming means 4, and is tapped off from the trans- 
mitting line encryption means 5. The transmitting line 
encryption means 5 encrypts this synchronous trans- 



mission data into encrypted synchronous transmission 
data by using the transmission key for transmitting, and 
then transmits it to the data multiplexing means 6. 
The data multiplexing means 6 multiplexes the 

5 asynchronous transmission data as well as the 
encrypted synchronous transmission data with a time 
division means or the like, and a transmission means 7 
transmits this data to the transmitting line. 

When receiving data from the network, a reception 

10 means 9 receives data through the transmitting line 8, 
then separates the data which has been processed in 
time-division-multiplex system with a data separation 
means 10, and produces encrypted synchronous 
reception data as well as asynchronous reception data. 

is A reception admission means 1 1 extracts the con- 
trol information from the asynchronous reception data, 
and outputs the control information to transmitting line 
decryption means by using a secret key stored in this 
apparatus as a reception key for transmitting. The 

20 received control information is processed by a reception 
command processing means 12, and produces an 
effective command in this apparatus. 

A transmitting line decryption means 13 receives 
the reception key for transmitting from the reception 

25 admission means 1 1 , and decrypts the encrypted syn- 
chronous reception data with this reception key for 
transmitting, and produces synchronous reception data. 
A reception data format transforming means transforms 
a format of the synchronous reception data, and pro- 

30 duces reception data. 

As explained above, a conventional encryption & 
decryption apparatus encodes data by using the trans- 
mitting line encryption means so that information to be 
transmitted may be veiled to the devices other than the 

35 receiver on the network. However, according to the 
above structure, the strength of encryption depends on 
the transmitting line encryption means, and it cannot be 
changed depending on the content of data to be trans- 
mitted or received. 

40 

Summary of the Invention 

A purpose of the present invention is to provide an 
encryption apparatus, a decryption apparatus, and an 

45 encryption & decryption apparatus which can change 
the strength of encryption depending on the content of 
data to be transmitted or received as well as change an 
encryption method flexibly depending on a compression 
method of data. 

so In order to realize the above purpose, the encryp- 
tion & decryption apparatus of the present invention 
comprises the following members: 

1. Data encryption means for encrypting transmis- 
55 sion data by using a data transmission key, 

2. Transmissionndata-format-transforming means 
for transforming encrypted transmission data pro- 
duced by the data encryption means into synchro- 
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nous transmission data having a data format for 
transmitting, 

3. Transmitting line encryption means which 
encrypts the synchronous transmission data to pro- 
duce encrypted synchronous transmission data by 
using a transmission key for transmitting, 

4. Transmitting line decryption means which 
decrypts the encrypted synchronous reception data 
by using a reception key for transmitting, 

5. Reception-data-fbrmat-transforming means for 
transforming a format of the synchronous reception 
data tapped off from the transmitting line decryption 
means to produce encrypted reception data, and 

6. Data decryption means for decrypts the 
encrypted reception data by using a data reception 
key to produce reception data. 

The encryption & decryption apparatus of the 
present invention thus can encrypt data appropri- 
ately depending on a content or a type of the data, 
and also encrypt highly secret data with a deeper 
strength. 

The transmission key for data includes not only 
a control key for a charge, etc. but also a key indi- 
cating an encryption method and a decryption key 
corresponding thereto. 

The above encryption & decryption apparatus 
further comprises the following members: 

7. A transmission admission means, which is linked 
with the data encryption means and the transmit- 
ting line encryption means, for admitting data trans- 
mission as well as producing the transmission key 
for data responsive to the data content, 

and data to be transmitted is encrypted by the data 
encryption means using the transmission key for 
data tapped off from the transmission admission 
means, 

8. A reception admission means, which is linked 
with the data decryption means and transmitting 
line decryption means, for admitting data reception 
as well as producing the reception key for data cor- 
responding to the transmission key for data, 

and encrypted reception data is decrypted by the 
data decryption means using the reception key for 
data. The encryption & decryption apparatus can 
appropriately encrypt data to be transmitted or 
received by using a data key responsive to a con- 
tent or type thereof, and thereby can encrypt a 
highly confidential data with a deeper strength to 
protect it with ease. 

Another encryption & decryption apparatus for the 
above purpose comprises the following members: 

1. A plurality of data encryption means which 
encrypts transmission data by using the transmis- 
sion key for data, 

2. A plurality of transmission<Jata-format-trans- 
forming means for transforming encrypted trans- 



mission data produced by each of the data 
encryption means into synchronous transmission 
data having a data format for transmitting line, 

3. Transmitting line encryption means which 
5 encrypts synchronous transmission data to pro- 
duce encrypted synchronous transmission data by 
using a transmission key for transmitting, 

4. Transmitting line decryption means which 
decrypts the encrypted synchronous reception data 

io by using a reception key for transmitting, 

5. A plurality of reception-data-format-transforming 
means for transforming a format of the synchronous 
reception data tapped off from the transmitting line 
decryption means to produce encrypted reception 

is data, and 

6. A plurality of data decryption means for decrypts 
the encrypted reception data by using a data recep- 
tion key to produce reception data. 

The encryption & decryption apparatus can appro- 
ve priately encrypt the data to be transmitted r 
received depending on various types of data (e.g. 
data compressed by different methods such as 
MPEG, DV format. Etc.) independently, and also 
can flexibly change a strength of encryption to a 
25 plurality of data. 

The above encryption & decryption apparatus 
further comprises the following members: 

7. A transmission admission means, which is linked 
with a plurality of data encryption means and the 

30 transmitting line encryption means, for admitting 
data transmission as well as producing the trans- 
mission key for data responsive to the input data to 
each data encryption means, which data are coded 
in various ways, and data to be transmitted is 

35 encrypted by the data encryption means using the 
transmission key for data tapped off from the trans- 
mission admission means, 

8. A reception admission means, which is linked 
with the transmitting line decryption means and a 

40 plurality of data decryption means, for admitting 
data reception as well as producing the reception 
key for data corresponding to the transmission key 
for data, 

and encrypted reception data is decrypted by each 
45 of the data decryption means using the reception 
key for data, thereby producing reception data. The 
encryption & decryption apparatus can thus appro- 
priately encrypt data to be transmitted or received 
by using a data key responsive to a content or type 
so thereof, and thereby can encrypt a highly confiden- 
tial data with a deeper strength to protect it at a high 
speed. 

Still another encryption & decryption apparatus for 
55 the above purpose comprises the following members: 

1. Data encryption means for encoding transmis- 
sion data by using a data transmission key, 
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2. Transmission data format transforming means for 
transforming encrypted transmission data pro- 
duced by the data encryption means into synchro- 
nous transmission data having a data format for 
communication, 5 

3. Transmitting line encryption means which 
encodes the synchronous transmission data to pro- 
duce encrypted synchronous transmission data by 
using a transmission key for transmitting, 

4. Transmitting line decoding means which decodes 10 
the encrypted synchronous reception data by using 

a reception key for transmitting, 

5. Reception data format transforming means for 
transforming a format of the synchronous reception 
data tapped off from the transmitting line decoding is 
means to produce encrypted reception data, and 

6. Data decoding means for decodes the encrypted 
reception data by using a data reception key to pro- 
duce reception data. 

20 

When transmission data and reception data are AV 
(audio & video) data, this apparatus can encrypt each 
individual AV data with an appropriate veil responsive to 
a confidentiality thereof, and making a decision depend- 
ing on a data compression method of each video data, 25 
thereby realizing a simple encryption process. 

A device linked in a network having a reception key 
for transmitting but without a reception key for data, for 
example, can easily encrypt a desirable video, which is 
hard to identify but roughly understandable what the 30 
video shows, responsive to its compression method by 
employing an appropriate encryption method with a 
reception key for data which meets a purpose. In a way 
of answering a purpose, this apparatus also can encrypt 
AV data, which is recorded from a TV (television) broad- 35 
casting into a VCR (video cassette recorder), when the 
recorded AV data is played back with the VCR. Thus, a 
copyright can be protected, and charges also can be 
properly billed. 

When video data is transformed into progressive 40 
video data in a non-interlace mode, high quality video 
data can be displayed with ease on a display device of 
a personal computer, at the same time, this apparatus 
can encrypt the progressive video data appropriately for 
charges with ease. When a personal computer is linked 45 
in a network without a reception key for data, this appa- 
ratus can encrypt the progressive video data against 
possible pirate and modification so that the progressive 
video data may not be decrypted, thereby increasing 
security of transmission/reception data. so 

When the transmission key for data and the recep- 
tion key for data are transmitted and received as a part 
of the encrypted transmission data and the encrypted 
reception data, and the transmitting line is encrypted by 
using the transmission and reception keys for transmit- ss 
ting, this apparatus can encrypt the transmission data 
as well as reception data appropriately with ease ensur- 
ing the security of the transmitting line. 



Brief Description of the Drawings 

Fig. 1 is a block diagram of an encryption & decryp- 
tion apparatus used in Exemplary Embodiment 1. 

Fig . 2 is a block diagram of the encryption & decryp- 
tion apparatus employing a transmission/reception 
admission means used in Exemplary Embodiment t. 

Fig. 3 is a block diagram of an encryption apparatus 
employing a transmission/reception admission means 
used in Exemplary Embodiment 1 . 

Fig. 4 is a block diagram of a decoding apparatus 
employing a transmission/reception admission means 
used in Exemplary Embodiment 1 . 

Fig. 5 is a block diagram of the encryption & decryp- 
tion apparatus transmitting/receiving a data reception 
key with synchronous data. 

Fig. 6 is a block diagram of an encoding part of an 
encryption & decryption apparatus used in Exemplary 
Embodiment 2. 

Fig. 7 is a block diagram of a decoding part of the 
encryption & decryption apparatus used in Exemplary 
Embodiment 2. 

Fig. 8 is a block diagram depicting a conventional 
encryption/decryption apparatus. 

Denotations of the Drawings 

1 . transmission command process means 

2. transmission admission means 

3. data encryption means 

4. transmission data format transforming means 

5. transmitting line encryption means 

6. data multiplexing means 

7. transmission means 

8. transmitting line 

9. reception means 

10. data separation means 

1 1 . reception admission means 

12. reception command process means 

13. transmitting line decoding means 

14. reception data format transforming means 

15. data decoding means 

Detailed Description of the Preferred Embodiments 

Exemplary embodiments are explained by referring 
to the drawings. 

Exemplary Embodiment 1 

Fig. 1 is a block diagram of an encryption & decryp- 
tion apparatus used in Exemplary Embodiment 1 
according to the present invention. The same elements 
of Fig. 1 used in a prior art are identically denoted with 
those of the prior art, and the descriptions thereof are 
omitted. 

When transmitting data into a network, a transmis- 
sion command process means 1 receives a command 
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input comprising a receiver, a device control command, 
etc.. and then transforms this command input into con- 
trol information understandable to the receiver, at the 
same time, the transmission command process means 
1 requests a transmission admission means 2 to admit 
data to be transmitted as well as a transmitting line to be 
used. The device control command is, e.g. control infor- 
mation such as playback, search, etc., when incorporat- 
ing this apparatus into a VCR or a LASER disc player. 
This encryption & decryption apparatus transforms 
such information into codes specified between this 
apparatus and a receiving device, and then outputs the 
codes to the transmission admission means 2. 

The transmission admission means 2 outputs the 
receiver's public key stored in this encryption & decryp- 
tion apparatus to a transmitting line encryption means 5 
as a transmission key for transmitting, and also outputs 
a public key for transmission data to a data encryption 
means 3 as a transmission key for data. At the same 
time, the transmission admission means 2 outputs the 
control information tapped off from the transmission 
command process means 1 to a data multiplexing 
means 6 as asynchronous transmission data. It is not 
necessarily to use the public key for data transmission 
as the transmission key for data, as well as not neces- 
sarily to use the receiver's public key as the transmis- 
sion key for transmitting. There are several alternatives 
as follows: 

1. Before transmitting data such as video data, an 
encrypting key may be obtained at the transmission 
admission means 2 from the receiver through trans- 
mitting / receiving asynchronous data 

2. Use the secret key produced by random numbers 
and the secret key stored m this encryption & 
decryption apparatus as an encrypting key, and 
transmit the public key corresponding to this pro- 
duced public key exclusively to the receiver in the 
form of asynchronous data. 

3. Provide a common key to plural devices of a 
receiver, and use the public key or the secret key of 
this common key for encryption. 

4. Receive the secret key or the public key from the 
receiver in the form of asynchronous data, and use 
this key as the transmission key for data. 

5. Through communication in asynchronous data 
format between the transmitter and the receiver, the 
secret key or the public key is agreed upon between 
them, and either one of the key may be used as the 
transmission key for data. 

Further to the above alternatives, the transmission 
key for data as well as a reception key for data may be 
received through the transmission line such as a TV 
broadcasting using a ground wave), CATV, a digital TV 
broadcasting, a digital satellite broadcasting, and a tele- 
phone line. For instance, AV data is encrypted with the 
received transmission key for data when recording the 



AV data from the TV broadcasting into a VCR, or play- 
ing back the AV data with the VCR, and the AV data is 
decrypted with a reception key for data stored in a 
smart-card put in a display devices linked on the trans- 

s mitting line, or with a reception key for data received 
through a telephone line. 

In the above description, the secret key and the 
public key are used in encryption; however, encryp- 
tion/decryption may be done with one key. 

10 A data encryption means 3. on the other hand, 
encrypts AV (audio & video) data (= transmission data) 
to be transmitted using a transmission key for data 
which is received from the transmission admission 
means 2, and produces encrypted transmission data. 

is This encryption method is developed based on various 
scramble methods, and can change a strength of 
encryption responsive to a content of data, or a degree 
of confidentiality of data. 

Next, a transmission<lata-format-transforming 

20 means 4 transforms the encrypted transmission data 
into synchronous transmission data in a data format, 
and outputs it to a transmitting line encryption means 5. 
The transmission data in this context is, e.g. in the form 
of DV data used in a digital VCR, or MPEG data. The 

25 synchronous transmission data is, e.g. written in the 
form of an isochronous packet specified by IEEE1394- 
1995. 

The transmitting line encryption means 5 encrypts 
the synchronous transmission data with a transmission 
30 key for transmitting which is tapped off from the trans- 
mission admission means 2, and outputs to a data mul- 
tiplexing means 6 as encrypted synchronous 
transmission data. 

The data multiplexing means 6 multiplexes asyn- 
35 chronous transmission data into an asynchronous 
packet; and encrypted synchronous data into the iso- 
chronous packet by using, e.g. a method specified by 
IEEE 1394-1 995. When a transfer rate of the asynchro- 
nous data has enough room, the asynchronous data 
40 can be multiplexed by a time division method, and can 
be transmitted as the asynchronous packet. 

A transmission means 7 executes a bus arbitration 
of a transmitting line 8 in order to obtain a right of using 
the bus, and transmits the asynchronous packet to the 
45 receiver. At the same time, the transmission means 7 
transmits the isochornous packet according to, e.g. a 
protocol of IEEE1394-1995 to the receiver periodically. 

When receiving the data from the network, a recep- 
tion means 9 receives, e.g. the asynchronous packet 
so and the isochronus packet addressed to the reception 
means 9 from the transmitting line 8, and separates the 
multiplexed data with a data separation means 10, 
thereby acquiring asynchronous reception data from the 
asynchronous packet as well as encrypted synchronous 
55 data from the isochronous packet. 

A reception admission means 1 1 extracts the con- 
trol information from the asynchronous reception data, 
and outputs the secret key stored in this apparatus to a 
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transmitting line decryption means 13 as the reception 
key for transmitting, also outputs the secret key for data 
reception to a data decryption means 15 as a reception 
key for data. The received control information is proc- 
essed by a reception command processing means 12, 5 
and an effective command is produced in this appara- 
tus. In this context, the reception key for transmitting 
and the reception key for data are not necessarily the 
secret keys. The same alternatives described in the 
section of the transmission admission means 2 are also w 
available for those two keys. 

The transmission fine decryption means 13 
receives the reception key for transmitting from the 
reception admission means 11, and decrypts the 
encrypted synchronous reception data with the recep- is 
tion key for transmitting to produce synchronous recep- 
tion data. 

A reception-data-format-transforming means 14 
transforms a format of the synchronous reception data 
to produce encrypted reception data, where the syn- 20 
chronous transmission data is, e.g. in the isochornous 
packet form specified by IEEE 1394-1 995, and the 
encrypted reception data, e.g. in the form of DV data 
used in a digital VCR. is encrypted. 

A data decryption means 15 decrypts the 2s 
encrypted reception data with the reception key for data 
to produce reception data. The reception data is , e.g. 
DV data used in the digital VCR. Thus, an output signal 
tapped off from the data decryption means 1 5 is fed into 
a DV encoder to get video data in NTSC format, which 30 
can be displayed on a TV screen. In this example, video 
data in NTSC format is used; however, progressive 
video data in non-interlace mode can be used for pro- 
ducing a high quality video data on a personal computer 
display with ease. When a personal computer having no 35 
reception key for data is linked with the network, and 
possible pirates as well as modifications are expected, 
an encryption hard to decrypt can be provided to pro- 
gressive video data. Thus a security for transmis- 
sion/reception data is improved. 40 

A further detailed embodiment of each block 
employed in Embodiment 1 is not illustrated in drawings, 
but is explained as follows: 

The transmission command processing means 1 
has two parts; i.e. (1) a transmission-command-produc- 45 
ing-part which transforms an internal command of the 
transmitter into a transmission command and outputs 
thereof and (2) an admission requesting part which 
requests an admission of the transmission admission 
means 2. so 

The transmission admission means 2 comprises 
the following three elements; (a) a memory which stores 
public keys both for data and transmitting, (b) a trans- 
mission key notifying part which notifies these public 
keys responsive to the request from the transmission ss 
process means 1 as the transmission key for data and 
the transmission key for transmitting respectively to the 
data encryption means 3 and the transmitting line 



encryption means 5, and (c) an asynchronous data 
transmitting part which transmits control information of 
the transmitter received from the transmission com- 
mand process means 1 to the data multiplexing means 
6. 

The data encryption means 3 comprises a data 
encrypting part which encrypts data with the transmis- 
sion key for data received from the transmission admis- 
sion means 2 following a pre-determined encryption 
method. 

The transmission-data-format-transforming means 
4 comprises a format transforming part which trans- 
forms encrypted transmission data into synchronous 
transmission data in a data format of the transmitting 
line. 

The transmitting line encryption means 5 com- 
prises a transmission encrypting part which encrypts 
data with the transmission key for transmitting received 
from the transmission admission means 2 by following a 
pre-determined encryption method. 

The data multiplex means 6 comprises the following 
three elements; (a) a synchronous packet producing 
part which transforms asynchronous transmission data 
into an asynchronous packet (b) an asynchronous 
packet producing part shich transforms an encrypted 
synchronous transmission data into an isochronous 
packet, and (c) a multiplexing part which multiplexes the 
asynchronous packet and the isochronous packet. 

The transmission means 7 comprises a transmitting 
part which conducts a bus-arbitration on the transmit- 
ting line 8 to obtain a bus-use right, and transfers the 
asynchronous packet as well as isochronous packet to 
a receiver with a pre-determined protocol individually. 

The reception means 9 comprises a receiving part 
which receives the asynchronous packet and the iso- 
chronous packet addressed to the reception means 9. 
The reception means 9, of course, can establish a con- 
nection between the transmitter. 

The data separation means 10 comprises the fol- 
lowing three elements: (a) a separating part which sep- 
arates multiplexed data, (b) an asynchronous packet 
receiving part which produces asynchronous reception 
data from the asynchronous packet, (c) a synchronous 
packet receiving part which receives encrypted syn- 
chronous data from the isochronous packet. 

The reception admission means 1 1 comprises the 
following three elements: (a) a command extracting part 
which extracts the control information of the transmitter 
from the asynchronous transmission data received from 
the data separation means 10 to transmit the control 
information to the reception command process means 
1 2, (b) a memory which stores a secret key for data and 
a secret key of the transmitter, (c) a reception key noti- 
fying part which notifies these secret keys as a recep- 
tion key for data and a reception key for transmitting to 
the data decryption means 15 and the transmitting line 
decryption means 13 respectively, by responding to 
requests of asynchronous reception data, synchronous 
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reception data and users of this receiver. 

The reception command process means 12 com- 
prises an inner command producing part which receives 
control information from the reception admission means 
1 1 and produces a command valid within this appara- s 
tus. 

The transmitting line decryption means 13 com- 
prises a transmission decrypting part which decrypts 
data with the reception key for transmitting received 
from the reception admission means 1 1 following a pre- 10 
determined decryption means. This decryption method 
forms a pair with a transmitting-line-encryption method 
employed in the transmitter, and has been agreed with 
between the transmitter and receiver. 

The data decryption means 15 comprises a data is 
decrypting part which decrypts data with the reception 
key for data received born the reception admission 
means 1 1 by following a pre-determined method. This 
decryption method forms a pair with a data-encryption- 
method employed in the transmitter, and has been 20 
agreed with between the transmitter and receiver. 

As the above embodiment proves, through using 
the data encryption means, transmitting line encryption 
means, data decryption means, and transmitting line 
decryption means, encryption responsive to transmrs- 25 
sion/reception data can be realized. Thus, a deeper 
strength encryption can be easily provided exclusively 
to a highly confidential data. As a result, a strength of 
encryption can be flexibly changed responsive to a con- 
tent of transfer/reception data. 30 

When using AV data (audio & video) as transmis- 
sion/reception data, a video of "pay per view" is 
encrypted so that the video can be roughly imaged what 
it shows but cannot be exactly identified. As such, an 
encryption method for digital broadcasting can be 35 
employed so that a highly confidential video is 
encrypted with a deeper strength by using a data key 
responsive to a purpose. 

AV data recorded from a TV broadcasting or the like 
into a VCR, etc. can be encrypted when the AV data is 40 
played back with a VCR, etc., therefore, with regard to 
any display devices linked with the transmitting line, a 
copyright of the AV data is protected and also a charge 
can be billed. 

Further, independent of encrypting a transmitting 45 
line, a content provider, e.g., can encrypt a content with 
its original method. Therefore, the content provider can 
flexibly protect a copyright or bill a charge on each con- 
tent independently to a receiver who views and listens 
to AV data through a display device linked with a trans- so 
mitting line. The content provider also can bill a charge 
when playing back a recorded content with a VCR, etc. 

In this embodiment, a data transmitter comprising 
the data encryption means, etc. and a data receiver 
comprising the data decryption means, etc. are incorpo- ss 
rated into one apparatus. However, if the transmission 
key for data and the reception key for data are pre- 
determined, an exclusive apparatus of video playback, 



for example, may incorporate only the data transmitter 
comprising the transmission command process means, 
transmission admission means, data encryption means, 
transmission-data-format-transforming means, trans- 
mitting line encryption means, data multiplexing means, 
and transmission means. In the case of an apparatus 
receiving only video data such as a monitor, the appara- 
tus may only incorporate the data receiver comprising 
the reception command process means, reception 
admission means, data decryption means, reception- 
data-format-transforming means, transmission line 
decryption means, data separation means, and recep- 
tion means. 

In this embodiment, AV data comprising audio data 
and video data is used as the transmission/reception 
data; however, various confidential data, e.g. text data 
and chart data can be used with expecting the same 
result as obtained for AV data. 

Every means described in this embodiment except 
the transmission means and a transmitting line driving 
circuit of the reception means, etc. can be executed in 
the form of software with expecting the same result. 

Further, the data multiplexing means and transmis- 
sion means can be combined into one means. The data 
separation means and reception means can be also 
combined into one means. Both can obtain the same 
result as the above embodiment can get. 

Fig. 2 is a block diagram where the above embodi- 
ment is carried out by using a transmission/reception 
command process means 16 substituting for the trans- 
mission command process means 1 and the reception 
command process means 12, and a transmis- 
sion/reception command means 17 substituting the 
transmission admission means 2 and the reception 
admission means 11. 

This structure shown in Fig. 3 makes it easier to 
communicate asynchronous data between the transmit- 
ter and the receiver, in particular, admissions of trans- 
mission and reception as well as controls of devices 
required for transmission/reception of asynchronous 
data, thereby accommodating a case flexibly where var- 
ious devices are linked to a transmitting line 8. For 
example, the following jobs can be done with ease when 
employing this structure: (1) A secret key or a public key 
is received from the receiver in the form of asynchro- 
nous data, and an encryption is done by. using this 
received key as a transmission key for data. (2) A secret 
key or a public key is agreed upon between the transmit- 
ter and the receiver through asynchronous data com- 
munication, and an encryption is done by using one of 
these keys as a transmission key for data. 

In this embodiment, the data transmitter comprising 
the data encryption means, etc., and the data receiver 
comprising the data decryption means, etc. are incorpo- 
rated into one apparatus; however, as shown in Fig. 3, in 
a playback device exclusive for video, only an encryp- 
tion apparatus is necessary and it may be made of only 
the following two elements: (1) a data transmitter com- 
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prising a transmission/reception command process 
means 16, transmission/reception admission means 17, 
data encryption means 3. transmission-data-format- 
transforming means 4, transmitting line encryption 
means 5, data multiplexing means 6, and a transmis- 
sion means 7, and (2) the reception means 9 for asyn- 
chronous data which is coupled with the 
transmission/reception admission means 17. Regarding 
a decryption apparatus, as shown in Fig. 4, in a monitor 
device which exclusively receives video data, only a 
decryption apparatus is required and it may be made of 
also only the following two elements: (1) a data receiver 
comprising the transmission/reception command proc- 
ess means 16, transmission/reception admission 
means 17, data decryption means 15, reception-data- 
for mat-transforming means 14, transmission line 
decryption means 13, data separation means 10, and 
the reception means 9, and (2) the transmission means 
7 for asynchronous data coupled with the transmis- 
sion/reception admission means 17. 

Fig. 5 depicts a modified case of this embodiment, 
where the transmission key for data is transmitted 
together with synchronous transmission data, and then 
the reception key for data is received together with syn- 
chronous reception data. 

First, the transmission admission means 2 outputs, 
e.g. the public key of the receiver stored in this appara- 
tus to the transmission line encryption means 5 as the 
transmission key for transmitting, and also outputs the 
public key of transmission data to the data encryption 
means 3 as the transmission key for data. At the same 
tune the transmission admission means 2 outputs the 
secret key for transmission data to the transmission- 
data-fbrmat-transforming means 4 as the reception key 
for data In this modified case, it is not necessarily to use 
the public key and secret key for transmission data as 
the transmission key for data and the reception key for 
data respectively, and instead, a secret key produced by 
a secret key and random numbers both stored in this 
apparatus may be used as the transmission key for data 
in order to encrypt data , and a public key corresponding 
to this secret key may be used as the reception key for 
data. Another alternative is to assign a common key for 
plural devices on receiver's side, and the public key and 
the secret key of this common key may be used as the 
transmission key for data and the reception key for data 
respectively. In this modified case, an encryption is 
explained by using the secret key and the public key; 
however, both encryption and decryption may be car- 
ried out by one single key, where an identical key is 
used for data output both to the data encryption means 
3 and the transmission-data-format-transforming 
means 4.. Structuring the apparatus as above makes it 
possible to handle the reception key for data with ease, 
and to realize an appropriate encryption responsive a 
type of transmission/reception data with securing confi- 
dentiality of the transmission line. 

Next, the transmission-data-format-transforming 



means 4 transforms encrypted transmission data which 
is tapped off from the data encryption means 3, and the 
reception key for data into synchronous transmission 
data in a data format of the transmission line, and then 

5 outputs them to the transmission line encryption means 
5. On the other hand, the reception-data-format-trans- 
forming means 14 transforms the format to extract 
encrypted reception data as well as the reception key 
for data. Then, the data decryption means 15 decrypts 

w the encrypted reception data by using this reception key 
for data to produce reception data. Structuring the 
apparatus as above makes it possible not to retain the 
reception key for data in the apparatus, thereby simplify- 
ing the structure and securing safety of the transmission 

75 line by encrypting thereof. 

Exemplary Embodiment 2 

Fig. 6 and Fig. 7 are block diagrams depicting an 
20 encryption & decryption apparatus used in Embodiment 
2 according to the present invention. The same ele- 
ments used in Embodiment 1 bear identical denotes in 
Embodiment 2, and descriptions thereof are omitted. In 
Fig. 6, a "N"th data decryption means 32 and "fsTth 
25 reception-data-format-transforming means 33 are used, 
where n N" is a natural number, and "N rt represents that 
there are a number of data decryption means as well as 
transmission-data-format-transforming means. In this 
embodiment, two data encryption means are employed, 
30 namely, a first and the "N^h ones. (e.g. an encryption 
means is assigned to each different compression 
encoding method, such as MPEG data, and DV format 
data.) When any arbitrary number of data encryption 
means are employed instead of two as this case, the 
35 same result can be expected with the same method 
used in this Embodiment. 

First, in the case of transmitting data onto a net- 
work, the transmission admission means 2 outputs the 
receiver's public key stored in this apparatus to the 
40 transmitting line encryption means 5, a public key for the 
first stream data to the first data encryption means 20 
as the transmission key for data, a public key of the 
"fsnh transmission data to the "Nlh data encryption 
means 22 as the "N^th transmission for data, and at the 
45 same time, the transmission admission means 2 out- 
puts control information received from the transmission 
command process means 1 to the data multiplexing 
means 6 as asynchronous transmission data. The first 
and the "NTth transmission keys for data may be differ- 
so ent or may be the same. (When different compression 
encoding methods are employed, and an almost identi- 
cal circuit form can accommodate both the compression 
methods, e.g. MPEG method and motion JPEG 
method, both the transmission keys for data may be 
55 identical.) As explained in Embodiment 1 , it is not nec- 
essarily to use the public key for data transmission as 
the transmission key for data, as well as not necessarily 
to use the receiver's public key as the transmission key 
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for transmitting. There are several alternatives as fol- 
lows: 

1. Before transmitting data such as video data, an 
encrypting key may be obtained at the transmission 
admission means 2 from the receiver through trans- 
mitting / receiving asynchronous data 

2. Use the secret key produced by random numbers 
and the secret key stored in this encryption & 
decryption apparatus as an encrypting key, and 
transmit the public key corresponding to this pro- 
duced public key exclusively to the receiver in the 
form of asynchronous data. 

3. Provide a common key to plural devices of a 
receiver, and use the public key or the secret key of 
this common key for encryption. 

4. Receive the secret key or the public key from the 
receiver in the form of asynchronous data, and use 
this key as the transmission key for data. 

5. Through communication in asynchronous data 
format between the transmitter and the receiver, the 
secret key or the public key is agreed upon between 
them, and either one of the key may be used as the 
transmission key for data. 

Further to the above alternatives, the transmission 
key for data as well as a reception key for data may be 
received through the transmission line such as a TV 
broadcasting using a ground wave), CATV, a digital TV 
broadcasting, a digital satellite broadcasting, and a tele- 
phone line. For instance. AV data is encrypted with the 
received transmission key for data when recording the 
AV data from the TV broadcasting into a VCR, or play- 
ing back the AV data with the VCR. and the AV data is 
decrypted with a reception key for data stored in a 
smart-card put in a display devices linked on the trans- 
mitting line, or with a reception key for data received 
through a telephone line. 

In the above description, the secret key and the 
public key are used in encryption; however, encryp- 
tion/decryption may be done with one key. 

On the other hand, the first data encryption means 
20 and the "N"th data encryption means 22 encrypt data 
to be transmitted with the transmission key for data 
received from the transmission admission means 2 to 
produce encrypted transmission data, where the data to 
be transmitted comprises video data and audio data. A 
first transmission data is fed into the first data encryp- 
tion means 20, and the "N M th transmission data is fed 
into the "N"th data encryption means 22. 

For instance, the first transmission data would be 
DV data used in a digital VCR, and the "N'th transmis- 
sion data would be MPEG data used in a digital satellite 
broadcasting. The first data encryption means 20 
encrypts all frames by using the first transmission key 
for data through the sarnie encryption method. The M N M th 
data encryption means 22 encrypts only one frame of 
the MPEG data by using the TvTth transmission key for 



data. The first data encryption means 20 and the "rsTth 
data encryption means 22, of course, may employ the 
same encryption method. 

Next, a first transmission-data-format-transforming 
s means 21 and a "NTth transmission-data-format-trans- 
forming means 23 transform the encrypted transmission 
data into a first synchronous transmission data and a 
"NTh synchronous transmission in a data format of the 
transmission line, and output the transformed data to 
10 the transmitting line encryption means 5. The synchro- 
nous transmission data is written, e.g. in an isochronous 
packet format specified by IEEE1 394-1 995. 

The transmitting line encryption means 5 encrypts 
those synchronous transmission data with the transmis- 
15 sion key for transmitting tapped off from the transmis- 
sion admission means 2, and otuputs them to the data 
multiplexing means 6 as encrypted synchronous trans- 
mission data. 

Using a method specified IEEE1394-1995 for 
20 example, the data multiplexing means 6 multiplexes 
asynchronous data in the form of asynchronous packet, 
as well as the encrypted synchronous transmission data 
in the form of isochronous packet. 

A transmission means 7 executes a bus arbitration 
25 of a transmitting line 8 in order to obtain a right of using 
the bus, and transmits the asynchronous packet to the 
receiver. At the same time, the transmission means 7 
transmits the isochornous packet according to, e.g. a 
protocol of IEEE1394-1995 to the receiver periodically. 
30 When receiving the data from the network, a recep- 
tion means 9 receives, the asynchronous packet and 
the isochronus packet addressed to the reception 
means 9 from the transmitting line 8, and separates the 
multiplexed data with a data separation means 10, 
35 thereby acquiring asynchronous reception data from the 
asynchronous packet as well as encrypted synchronous 
data from the isochronous packet. 

A reception admission means 1 1 extracts the con- 
trol information from the asynchronous reception data, 
40 and outputs the secret key stored in this apparatus to a 
transmitting line decryption means 13 as the reception 
key for transmitting, also outputs the secret key for data 
reception to a data decryption means 30, 33 as a recep- 
tion key for data respectively. The received control infor- 
45 mation is processed by a reception command 
processing means 12, and an effective command is pro- 
duced in this apparatus. In this context, the reception 
key for transmitting and the reception key for data are 
not necessarily the secret keys. The same alternatives 
so described in the section of the transmission admission 
means 2 are also available for those two keys. 

The transmission line decryption means 13 
receives the reception key for transmitting from the 
reception admission means 11, and decrypts the 
55 encrypted synchronous reception data with the recep- 
tion key for transmitting to produce synchronous recep- 
tion data. 

A first reception-data-format transforming means 
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31 and a "NTth reception-data-format transforming 
means 33 transform a format of synchronous reception 
data, and produce a first encrypted reception data and 
a "fsTth encrypted reception data respectively. For 
example, the first encrypted reception data may be an 5 
encrypted data of DV data format, and the "N'lh 
encrypted reception data may be an encrypted data of 
MPEG data format. The synchronous transmission data 
may be, for example, an isochronous packet format 
specified by IEEE1394-1995. 10 

A first data decryption means 30 and a "N"th data 
decryption means 32 decrypt the encrypted reception 
data with a reception key for first reception data and with 
a reception key for "N"th reception data to produce a 
first reception data and "N"th reception data respec- 15 
tively, where the reception key for first data corresponds 
to the transmission key for first data, and the reception 
key for "N"th data corresponds to the transmission key 
for "N"th data. As a result, the first reception data may 
be DV data, and the "N"th reception data may be MPEG 20 
data. Those reception data are fed to a DV encoder and 
a MPEG encoder respectively with a desirable time 
interval to produce video data, which can be displayed 
on the monitor. The video data may be progressive 
video data in a non-interlace method so that the video 25 
data can be displayed on a display device of a personal 
computer as high quality video data. An encryption 
necesssary for charges of the progressive video data 
thus can be realized appropriately with ease. When a 
personal computer having no reception key for data is 30 
linked to the network, and it may be happened that a 
user of this personal computer pirates and modifies the 
data, an encryption through which the data is difficult to 
read can be available. A transmission/reception data is 
thus protected with high security. 35 

As explained above, according to Exemplary 
Embodiment 2, an encryption responsive to stream data 
can be realized by using plural data encryption means, 
and plural transmission-data-transforming means, and 
a transmission line encryption means, e.g., compressed 40 
video data by the DV format or by the MPEG data is 
appropriately encrypted. Video information requiring 
concealment can be thus encrypted with ease respon- 
sive to a compression method of each video data. For 
instance, a device, which has a reception key for trans- 45 
mitting but does not have a reception key for data, is 
linked with a network, and through this device a user 
can watch a video not exactly but even roughly though 
hard to see. In such a case, the video can be encrypted 
independently of a video compression method. so 

In this embodiment, the plural transmission-data- 
format-transforming means are to be coupled with the 
data multiplexing means; however, the plural transmis- 
sion-data-format-transforming means may be changed 
with a switch, and one of the plural means is selected to ss 
couple with the data multiplexing means. The switching 
may be controlled by the transmission command proc- 
ess means or the transmission admission means. 



Through this method, the same result as that of the 
above embodiment can be expected. This method can 
be also applied to the plural reception-data-formattrans- 
forming means. 

In this embodiment, a data transmitter comprising 
the data encryption means, etc. and a data receiver 
comprising the data decryption means, etc. are incorpo- 
rated into one apparatus. However, if the transmission 
key for data and the reception key for data are pre- 
determined, an exclusive apparatus of video playback, 
for example, may incorporate only the data transmitter 
comprising the transmission command process means, 
transmission admission means, the first data encryption 
means, the "N'th data encryption means, the first trans- 
mission-data-format-transforming means, the "N n th 
transmission-data-format-transforming means, the 
transmitting line encryption means, the data multiplex- 
ing means, and the transmission means. In the case of 
an apparatus receiving only video data such as a moni- 
tor, the apparatus may only incorporate the data 
receiver comprising the reception command process 
means, reception admission means, the first data 
decryption means, the M N"th data decryption means, the 
first reception-data-format-transfbrming means, the 
"N"th reception-data-format-transforming means, the 
transmission line decryption means, the data separation 
means, and the reception means. 

Every means described in this embodiment except 
transmission means and transmitting line driving circuit 
of the reception means, etc. can be executed in the form 
of software with expecting the same result. 

Further, the data multiplexing means and transmis- 
sion means can be combined into one means. The data 
separation means and reception means can be also 
combined into one means. Both can obtain the same 
result as the above embodiment can get. 

As same as shown in Fig. 2, this embodiment is 
carried out by using a transmission/reception command 
process means 1 6 substituting for both the transmission 
command process means 1 and the reception com- 
mand process means 12, and a transmission/reception 
command means 17 substituting for both the transmis- 
sion admission means 2 and the reception admission 
means 11. For example, the following jobs can be done 
with ease when employing this structure: (1) A secret 
key or a public key is received from the receiver in the 
form of asynchronous data, and an encryption is done 
by using this received key as a transmission key for 
data. (2) A secret key or a public key is agreed upon 
between the transmitter and the receiver through asyn- 
chronous data communication, and an encryption is 
done by using one of these keys as a transmission key 
for data. 

In this embodiment, the data transmitter comprising 
the first data encryption means, etc., and the data 
receiver comprising the first data decryption means, etc. 
are incorporated into one apparatus; however, as 
shown in Fig. 2, in a playback device exclusive for video, 
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only an encryption apparatus is necessary and it may 
be made of only the following two elements: (1) a data 
transmitter comprising a transmission/reception com- 
mand process means 16, transmission/reception 
admission means 17, first data encryption means 20, 5 
"N"th data encryption means 22, first transmission<iata- 
format-transforming means 21, M r\Tth transmission- 
data-format-transforming means 23, transmitting line 
encryption means 15. data multiplexing means 6, and 
transmission means 7, and (2) the reception means 9 10 
for asynchronous data which is coupled with the trans- 
mission/reception admission means 17. Regarding a 
decryption apparatus, as shown in Fig. 4. in a monitor 
device which exclusrveiy receives video data, only a 
decryption apparatus is required and it may be made of 1S 
also only the following two elements: (1) a data receiver 
comprising the transmssion/ reception command proc- 
ess means i 6, transmission/reception admission 
means 17, first data decryption means 30, M N"th data 
decryption means 32. first reception-data-format-trans- 20 
forming means 31, "N"th reception-data -format-trans- 
forming means 33, transmission line decryption means 
13, data separation means 10. and the reception means 
9, and (2) the transmission means 7 for asynchronous 
data coupled with the transmission/reception admission 2 s 
means 1 7. 

As same as shown in Fig 5, the transmission key 
for data can be transmitted together with synchronous 
transmission data, and the reception key for data can be 
received together with synchronous reception data in 30 
this embodiment, thus the reception key for data can be 
handled with ease, and transmission/reception data can 
be encrypted in a simple structure with securing a con- 
fidentiality of the transmitting line. 

35 

Claims 

1. An encryption & decryption apparatus comprising; 

(a) transmission command process means for 40 
processing a transmission control signal, 

(b) transmission admission means for admit- 
ting data to be transmitted, which transmission 
admission means being coupled to said trans- 
mission command process means. 45 

(c) data encryption means for encrypting trans- 
mission data with a transmission key for data 
which is tapped off from said transmission 
admission means, 

(d) transmission-data-format-transforming so 
means for transforming encrypted transmission 
data produced by said data encryption means 
into synchronous transmission data having a 
data format of transmission line, 

(e) transmission line encryption means for pro- ss 
ducing an encrypted synchronous transmis- 
sion data by encrypting said synchronous 
transmission data with a transmission key for 
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transmitting tapped off from said transmission 
admission means, 

(f) data multiplexing means for multiplexing 
said encrypted synchronous transmission data 
and asynchronous transmission data tapped 
off from said transmission admission means, 

(g) transmission means for transmission data 
for transmitting which is tapped off from said 
data multiplexing means onto a transmitting 
line, 

(h) reception means for receiving reception 
data for transmitting from the transmitting line, 

(i) data separation means for separating said 
reception data for transmitting into encrypted 
synchronous reception data and asynchronous 
reception data, 

0) reception admission means for admitting 
data to be received, which reception admission 
means being coupled with said data separation 
means 

(k) reception command process means for 
processing a reception control signal tapped off 
from said reception admission means, 
(I) transmitting line decryption means for 
decrypting said encrypted synchronous recep- 
tion data with a reception key for transmitting 
which is tapped off from said reception admis- 
sion means, 

(m) reception-data-format-transfbrming means 
for producing encrypted reception data by 
transforming a format of synchronous recep- 
tion data which is tapped off from said transmit- 
ting line decryption means, and 
(n) data decryption means for producing recep- 
tion data by decrypting said encrypted recep- 
tion data with a reception key for data which is 
tapped off from said reception admission 
means. 

2. An encryption apparatus comprising : 

(a) transmission command process means for 
processing a transmission control signal, 

(b) transmission admission means for admit- 
ting data to be transmitted, which transmission 
admission means being coupled to said trans- 
mission command process means, 

(c) data encryption means for encrypting trans- 
mission data with a transmission key for data 
which is tapped off from said transmission 
admission means, 

(d) transmission-data-format-transforming 
means for transforming encrypted transmission 
data produced by said data encryption means 
into synchronous transmission data having a 
data format of transmission line, 

(e) transmission line encryption means for pro- 
ducing an encrypted synchronous transmis- 
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sion data by encrypting said synchronous 
transmission data with a transmission key for 
transmitting tapped off from said transmission 
admission means, 

(f) data multiplexing means for multiplexing s 
said encrypted synchronous transmission data 
and asynchronous transmission data tapped 

off from said transmission admission means, 
and . . 

(g) transmission means for transmitting trans- 10 
mission data for transmitting which is tapped 

off from said data multiplexing means onto a 
transmitting line. 

A decryption apparatus comprising; 15 

(a) reception means for receiving reception 
data for transmitting from the transmitting line, 

(b) data separation means for separating said 
reception data for transmitting into encrypted 20 
synchronous reception data and asynchronous 
reception data, 

(c) reception admission means for admitting 
data to be received, which reception admission 
means being coupled with said data separation 25 
means 

(d) reception command process means for 
processing a reception control signal tapped off 
from said reception admission means, 

(e) transmitting line decryption means for 30 
decrypting said encrypted synchronous recep- 
tion data with a reception key for transmitting 
which is tapped off from said reception admis- 
sion means, 

(f) reception -data-format-transforming means 35 
for producing encrypted reception data by 
transforming a format of synchronous recep- 
tion data which is tapped off from said transmit- 
ting line decryption means, and 

(g) data decryption means for producing recep- 40 
tion data by decrypting said encrypted recep- 
tion data with a reception key for data which is 
tapped off from said reception admission 
means. 

45 

An encryption & decryption apparatus comprising: 

(a) transmission command process means for 
processing a transmission control signal, (b) 
transmission admission means for admitting so 
data to be transmitted, which transmission 
admission means being coupled to said trans- 
mission command process means, 

(c) a plurality of data encryption means for 
encrypting transmission data with a transmis- ss 
sion key for data which is tapped off from said 
transmission admission means, 

(d) a plurality of transmission-data-format- 



transforming means for transforming encrypted 
transmission data produced by said plurality of 
data encryption means into synchronous trans- 
mission data having a data format of transmis- 
sion line, 

(e) transmission line encryption means for pro- 
ducing an encrypted synchronous transmis- 
sion data by encrypting said synchronous 
transmission data with a transmission key for 
transmitting tapped off from said transmission 
admission means, 

(f) data multiplexing means for multiplexing 
said encrypted synchronous transmission data 
and asynchronous transmission data tapped 
off from said transmission admission means, 

(g) transmission means for transmission data 
for transmitting which is tapped off from said 
data multiplexing means onto a transmitting 
line, 

(h) reception means for receiving reception 
data for transmitting from the transmitting line, 
(0 data separation means for separating said 
reception data for transmitting into encrypted 
synchronous reception data and asynchronous 
reception data, 

(j) reception admission means for admitting 
data to be received, which reception admission 
means being coupled with said data separation 
means 

(kj reception command process means for 
processing a reception control signal tapped off 
from said reception admission means, 
(I) transmitting line decryption means for 
decrypting said encrypted synchronous recep- 
tion data with a reception key for transmitting 
which is tapped off from said reception admis- 
sion means, 

(m) a plurality of reception-data-format-trans- 
forming means for producing encrypted recep- 
tion data by transforming a format of 
synchronous reception data which is tapped off 
from said transmitting line decryption means, 
and 

(n) a plurality of data decryption means for pro- 
ducing reception data by decrypting said 
encrypted reception data with a reception key 
for data which is tapped off from said reception 
admission means. 

5. An encryption apparatus comprising: 

(a) transmission command process means for 
processing a transmission control signal, 

(b) transmission admission means for admit- 
ting data to be transmitted, which transmission 
admission means being coupled to said trans- 
mission command process means, 

(c) a plurality of data encryption means for 



12 



23 



EP 0 858 183 A2 



24 



encrypting transmission data with a transmis- 
sion key for data which is tapped off from said 
transmission admission means, 

(d) a plurality of transmission-data-format- 
transforming means for transforming encrypted s 
transmission data produced by said plurality of 
data encryption means into synchronous trans- 
mission data having a data format of transmis- 
sion line, 

(e) transmission line encryption means for pro- 10 
ducing an encrypted synchronous transmis- 
sion data by encrypting said synchronous 
transmission data with a transmission key for 
transmitting tapped off from said transmission 
admission means, 15 

(f) data multiplexing means for multiplexing 
said encrypted synchronous transmission data 
and asynchronous transmission data tapped 
off from said transmission admission means, 

(g) transmission means for transmission data 20 
for transmitting which is tapped off from said 
data multiplexing means onto a transmitting 
line, 

6. A decryption apparatus comprising: 25 

(a) reception means for receiving reception 
data for transmitting from the transmitting line, 

(b) data separation means for separating said 
reception data for transmitting into encrypted 30 
synchronous reception data and asynchronous 
reception data, 

(c) reception admission means for admitting 
data to be received, which reception admission 
means being coupled with said data separation 35 
means 

(d) reception command process means for 
processing a reception control signal tapped off 
from said reception admission means, 

(e) transmitting line decryption means for 40 
decrypting said encrypted synchronous recep- 
tion data with a reception key for transmitting 
which is tapped off from said reception admis- 
sion means, 

(f) a plurality of reception-data-format-trans- 4s 
forming means for producing encrypted recep- 
tion data by transforming a format of 
synchronous reception data which is tapped off 
from said transmitting line decryption means, 
and 50 

(g) a plurality of data decryption means for pro- 
ducing reception data by decrypting said 
encrypted reception data with a reception key 
for data which is tapped off from said reception 
admission means. 55 

7. The encryption & decryption apparatus of Claim 1 
or Claim 4, or the encryption apparatus of Claim 2 



or Claim 5, or the decryption apparatus of Claim 3 
or Claim 6 wherein; reception data and transmis- 
sion data are AV data comprising audio data and 
video data. 

8. The encryption & decryption apparatus, or the 
encryption apparatus, or the decryption apparatus 
of Claim 7 wherein; video data is progressive video 
data. 

9. The encryption & decryption apparatus of Claim 1 
or 4, or the encryption apparatus of Claim 2 or 5 
wherein; the transmission-data-format-transform- 
ing means transforms the reception key for data 
which is tapped off from the transmission admission 
means and the encrypted transmission data into 
the synchronous transmission data having the data 
format of the transmitting line. 

10. The encryption & decryption apparatus of Claim 1 
or Claim4, or the decryption apparatus of Claim 3 or 
Claim 6 wherein: the reception-data-fbrmat-trans- 
forming means produces the encrypted reception 
data and the reception key for data by transforming 
the format of synchronous reception data which is 
tapped off from the transmitting line decryption 
means, and the data decryption means decrypts 
said encrypted reception data with the reception 
key for data which is tapped off from said reception- 
data-format-transforming means. 

1 1. An encryption & decryption apparatus comprising: 

(a) transmission command process means for 
processing a transmission control signal. 

(b) transmission admission .means for admit- 
ting data to be transmitted, which transmission 
admission means being coupled to said trans- 
mission command process means, and for pro- 
ducing a transmission key for data responsive 
to content of said data, 

(c) data encryption means for encrypting trans- 
mission data with said transmission key for 
data which is tapped off from said transmission 
admission means, 

(d) transmission-data-format-transforming 
means for transforming encrypted transmission 
data produced by said data encryption means 
into synchronous transmission data having a 
data format of transmission line, 

(e) transmission line encryption means for pro- 
ducing an encrypted synchronous transmis- 
sion data by encrypting said synchronous 
transmission data with a transmission key for 
transmitting tapped off from said transmission 
admission means, 

(f) data multiplexing means for multiplexing 
said encrypted synchronous transmission data 



BNSDOClD:<EP 08581 83 A2 I > 



13 



25 



EP 0 858 183 A2 



26 



and asynchronous transmission data tapped 
off from said transmission admission means, 

(g) transmission means for transmission data 
for transmitting which is tapped off from said 
data multiplexing means onto a transmitting s 
line, 

(h) reception means for receiving reception 
data for transmitting from the transmitting line, 

(i) data separation means for separating said 
reception data for transmitting into encrypted 10 
synchronous reception data and asynchronous 
reception data, 

(j) reception admission means for admitting 
data to be recerved, which reception admission 
means being coupled with said data separation is 
means, and for producing a reception key for 
data responsive to said transmission key for 
data, 

(k) reception command process means for 
processing a reception control signal tapped off 20 
from said reception admission means, 
(I) transmitting line decryption means for 
decrypting said encrypted synchronous recep- 
tion data with a reception key for transmitting 
which is tapped ofl from said reception admis- 25 
sion means, 

(m) reception -data -for mat -transforming means 
for producing encrypted reception data by 
transforming a format of synchronous recep- 
tion data which is tapped off from said transmit- 30 
ting line decryption means, and 
(n) data decryption means for producing recep- 
tion data by decrypting said encrypted recep- 
tion data with said reception key for data which 
is tapped off from said reception admission 35 
means. 

An encryption apparatus comprising: 

(a) transmission command process means for 40 
processing a transmission control signal, 

(b) transmission admission means for admit- 
ting data to be transmitted, which transmission 
admission means being coupled to said trans- 
mission command process means, and for pro- 45 
ducing a transmission key for data responsive 

to content of said data, 

(c) data encryption means for encrypting trans- 
mission data with said transmission key for 
data which is tapped off from said transmission so 
admission means, 

(d) transmission-data-format-transforming 
means for transforming encrypted transmission 
data produced by said data encryption means 
into synchronous transmission data having a ss 
data format of transmission line, 

(e) transmission line encryption means for pro- 
ducing an encrypted synchronous transmis- 



sion data by encrypting said synchronous 
transmission data with a transmission key for 
transmitting tapped off from said transmission 
admission means, 

(f) data multiplexing means for multiplexing 
said encrypted synchronous transmission data 
and asynchronous transmission data tapped 
off from said transmission admission means, 

(g) transmission means for transmission data 
for transmitting which is tapped off from said 
data multiplexing means onto a transmitting 
line, 

13. A decryption apparatus comprising: 

(a) reception means for receiving reception 
data for transmitting from transmitting line 
depending on a content of data , said reception 
data for transmitting including encrypted data 
by a transmission key for data. 

(b) data separation means for separating said 
reception data for transmitting into encrypted 
synchronous reception data and asynchronous 
reception data, 

(c) reception admission means for admitting 
data to be received, which reception admission 
means being coupled with said data separation 
means, and for producing a reception key for 
data responsive to said transmission key for 
data, 

(d) reception command process means for 
processing a reception control signal tapped off 
from said reception admission means, 

(e) transmitting line decryption means for 
decrypting said encrypted synchronous recep- 
tion data with a reception key for transmitting 
which is tapped off from said reception admis- 
sion means, 

(f) reception-data-format-transforming means 
for producing encrypted reception data by 
transforming a format of synchronous recep- 
tion data which is tapped off from said transmit- 
ting line decryption means, and 

(g) data decryption means for producing recep- 
tion data by decrypting said encrypted recep- 
tion data with said reception key for data which 
is tapped off from said reception admission 
means. 
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(54) Encryption & decryption apparatus 

(57) In an encryption apparatus comprising; (a) a 
transmission- data-format- transformer (4) which trans- 
forms transmission data into synchronous transmission 
data having a data format of a transmitting line, (b) an 
encrypting device (3) which produces an encrypted syn- 
chronous transmission data by encrypting the synchro- 
nous transmission data with a transmission key for 
transmitting, (c) a transmission command processor (1) 
which processes a transmission control signal, (d) a 
transmission admission device (2) which outputs control 
information received from the transmission admission 
device as asynchronous data, and also admits the data 
to be transmitted, (e) a multiplexing device (6) which 
multiplexes the encrypted synchronous data as well as 
asynchronous transmission data to output, a data 
encryption device for encrypting transmission data is 
provided by using a transmission key for data in order 
that the transmission admission device produces a 
transmission key for data responsive to the data content 
to be encrypted by the data encryption device. A 
decryption apparatus for decrypting the encrypted sig- 
nal, and an encryption & decryption apparatus which 
combines the above encryption apparatus and the 
decryption apparatus are also available. Independent of 
encrypting a transmitting line, various depths of an 
encryption strength can be applied to data responsive to 



a data content arbitrary. As a result, a depth of encryp- 
tion strength can be changeable according to a type and 
a content of transmission/reception data, and thus, an . 
encryption method can be flexibly changeable depend- 
ing on a type of video, or a compression method of 
video data. 




transforming means 



Transmitting Ira 
decoding moans 






Reception adntcslon 





Date separation means 



FIG. 1 



Printed by Xerox {UK) Business Services 
2.16.7 (HRS)/3.6 



BNSDOCID: <EP 08581 83 A3 J _> 



EP0 858 183 A3 




European Patent 
Office 



EUROPEAN SEARCH REPORT 



Application Number 

EP 98 10 1885 



DOCUMENTS CONSIDERED TO BE RELEVANT 



Category 



Citation of document with indication, where appropriate. 
of relevant passages 



Relevant 
to claim 



CLASSIFICATION OF THE 
APPLICATION (lnLCI.6) 



EP 0 875 813 A (SONY CORP) 
4 November 1998 (1998-11-04) 

* abstract * 

* page 2, line 7 - line 40 * 

* page 3, line 33 - page 4, line 45 * 

* page 9, line 56 - page 10, line 41 * 

* figures 1,3,10 * 

EP 0 710 025 A (SONY CORP) 
1 May 1996 (1996-05-01) 

* abstract * 

* column 3, line 15 - line 45 * 

* column 4, line 1 - line 30 * 

* column 7, line 32 - column 8, line 41 * 

* column 12, line 11 - column 14, line 20 



1-13 



H04L9/00 
H04L29/06 



1-13 



TECHNICAL FIELDS 
SEARCHED (lnt.CI.6) 



G06F 
G11B 

H04L 
H04N 



The present search report has been drawn up for all claims 



Plao* of Mtaicft 

BERLIN 



D*e ot completion of the •earch 

30 August 2000 



Carnerero Alvaro, F 



CATEGORY OF CfTEO DOCUMENTS 

X : particularly relevant if taken akin* 

Y : particularly relevant it combined with another 

document of the tame category 
A : ttohnolooioal background 
O : non-written disclosure 
P : Intermediate document 



T : theory or principle underlying the invention 
E : earlier patent document, but pobtnhed on, or 

after the filing date 
O : document cited in the application 
L : document cited for other reaeona 

& : member of the same patent family, corresponding 
document 



2 



EP 0 858 183 A3 



ANNEX TO THE EUROPEAN SEARCH REPORT 

ON EUROPEAN PATENT APPLICATION NO. EP 98 10 1885 



This annex lists the patent family members relating to the patent documents cited in the above-mentioned European search renort 
The members an> as contained in the European Patent Office EDP file on " ^ repon. 

The European Patent Ottme is in no way liable tor these particulars which are merely given for the purpose of information. 

30-08-2000 



Patent document 
cited in March report 



Publication 
data 



Patent family 
memben» 



Publ 
data 



EP 0875813 
EP 07 10025 



A 
A 



04-11-1998 
01-05-1996 



JP 10301492 A 



13-11-1998 



JP 
EP 
US 



8181689 A 
0996288 A 
5721778 A 



12-07-1996 
26-04-2000 
24-02-1998 



ui For more details about this annex : see Official Journal of the European Patent Office. No. 1 2/82 



3 



BNSDOCID: <EP. 08581 83A3 I > 



